12 matches found
EUVD-2016-6748
Malware in sbrugna...
EUVD-2016-6746
Malware in sbrugna...
Information disclosure
An issue was discovered in Visonic PowerLink2, all versions prior to October 2016 firmware release. When a specific URL to an image is accessed, the downloaded image carries with it source code used in the web server INFORMATION EXPOSURE...
Cross site scripting
An issue was discovered in Visonic PowerLink2, all versions prior to October 2016 firmware release. User controlled input is not neutralized prior to being placed in web page output CROSS-SITE SCRIPTING...
CVE-2016-5811
An issue was discovered in Visonic PowerLink2, all versions prior to October 2016 firmware release. User controlled input is not neutralized prior to being placed in web page output CROSS-SITE SCRIPTING...
CVE-2016-5813
CVE-2016-5813 affects Visonic PowerLink2: all versions prior to the October 2016 firmware release. The issue is information exposure; when a specific image URL is accessed, the downloaded image also contains the web server source code. This vulnerability is described across multiple sources (NVD/...
CVE-2016-5811
An issue was discovered in Visonic PowerLink2, all versions prior to October 2016 firmware release. User controlled input is not neutralized prior to being placed in web page output CROSS-SITE SCRIPTING...
CVE-2016-5813
An issue was discovered in Visonic PowerLink2, all versions prior to October 2016 firmware release. When a specific URL to an image is accessed, the downloaded image carries with it source code used in the web server INFORMATION EXPOSURE...
CVE-2016-5811
CVE-2016-5811 affects Visonic PowerLink2: all versions prior to the October 2016 firmware release. The issue is that user-controlled input is not neutralized before being output in web pages, causing Cross-Site Scripting (XSS). Exploitation is reported to be possible remotely, with impact limited...
Visonic PowerLink2 Information Disclosure Vulnerability
Visonic powerlink2 is a popular app. Visonic PowerLink2 has an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...
Visonic PowerLink2 Cross-Site Scripting Vulnerability
Visonic powerlink2 is a popular app. Visonic PowerLink2 suffers from cross-site scripting, which can be exploited by an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of an affected site...
Visonic PowerLink2 Vulnerabilities
OVERVIEW Independent researcher Aditya K. Sood has identified cross-site scripting and source code disclosure vulnerabilities in Visonic’s PowerLink2 module. Visonic has produced an updated version to mitigate these vulnerabilities. These vulnerabilities could be exploited remotely. AFFECTED...